<?php

class UserController extends Controller
{
	/**
	 * @var string the default layout for the views. Defaults to '//layouts/column2', meaning
	 * using two-column layout. See 'protected/views/layouts/column2.php'.
	 */
	public $layout='//layouts/column2';

	/**
	 * @return array action filters
	 */
	public function filters()
	{
		return array(
			'accessControl', // perform access control for CRUD operations
		);
	}

	/**
	 * Specifies the access control rules.
	 * This method is used by the 'accessControl' filter.
	 * @return array access control rules
	 */
	public function accessRules()
	{
		return array(
			array('allow',  // allow all users to perform 'index' and 'view' actions
				'actions'=>array('index','view'),
				'users'=>array('*'),
			),
			array('allow', // allow authenticated user to perform 'create' and 'update' actions
				'actions'=>array('create','update','updatePass', 'addChild'),
				'users'=>array('@'),
			),
			array('allow', // allow admin user to perform 'admin' and 'delete' actions
				'actions'=>array('admin','delete'),
				'users'=>array('admin'),
			),
			array('deny',  // deny all users
				'users'=>array('*'),
			),
		);
	}

	/**
	 * Displays a particular model.
	 * @param integer $id the ID of the model to be displayed
	 */
	public function actionView($id)
	{
		$this->render('view',array(
			'model'=>$this->loadModel($id),
		));
	}

	/**
	 * Creates a new model.
	 * If creation is successful, the browser will be redirected to the 'view' page.
	 */
	public function actionCreate()
	{
		$model=new User('create');
		
		$model->type = 2;//set default value.
		
		// Uncomment the following line if AJAX validation is needed
		// $this->performAjaxValidation($model);

		if(isset($_POST['User']))
		{
			$model->attributes=$_POST['User'];
			
		  if (@!empty($_FILES['User']['name']['avatar'])){
		      
          $model->avatar = CUploadedFile::getInstance($model, 'avatar');
			    //validate, oldname, newname, waiting to save and saveAs
			    
          if ($model->validate(array('avatar'))){
			        $tmpAvatarName = time().'_'.$model->randStr(3).'.jpg';
			        $model->avatar->saveAs(Yii::app()->basePath.'/../images/avatar/'.$tmpAvatarName);
			        $model->avatar = $tmpAvatarName; 
			    }
			}else {
			    $model->avatar = 'default.jpg';
			}
			
			
			if($model->save())
				$this->redirect(array('view','id'=>$model->id));
		}

		$this->render('create',array(
			'model'=>$model,
		));
	}
	
	/**
	 * use this function for all parents to fast add a child under his/her account.
	 */
	public function actionAddChild()
	{
	    //check account type
	    $currentUser = User::model()->findByPk(Yii::app()->user->id);
//	    echo $currentUser->type;
	    if ($currentUser->type < 3){
	        $newUser=new User('create');
		
		      $newUser->type = 3;//set default value.
		      if(isset($_POST['User'])){
		          $newUser->attributes = $_POST['User'];
		          

		          //avatar setting....
    		      if (@!empty($_FILES['User']['name']['avatar'])){
    		      
                  $newUser->avatar = CUploadedFile::getInstance($newUser, 'avatar');
        			    //validate, oldname, newname, waiting to save and saveAs
        			    
                  if ($newUser->validate(array('avatar'))){
        			        $tmpAvatarName = time().'_'.$newUser->randStr(3).'.jpg';
        			        $newUser->avatar->saveAs(Yii::app()->basePath.'/../images/avatar/'.$tmpAvatarName);
        			        $newUser->avatar = $tmpAvatarName; 
        			    }
        			}else {
        			    $newUser->avatar = 'default.jpg';
        			}
    		          
		          
		          //get default value from parents
		          $newUser->phone = $currentUser->phone;
		          $newUser->email = $currentUser->email;
		          
		          if($newUser->save()){
		              //add relations
		              $newRelation = new PsRelation();
		              $newRelation->uid = $currentUser->id;
		              $newRelation->cid = $newUser->id;
		              if ($newRelation->save()){
                      $this->redirect(array('view','id'=>$newUser->id));
		              }
		          }
				      
		      }
		      $this->render('addChild',array(
    				'model'=>$newUser,
    	    ));
		      
	    }else {
	        $this->redirect(array('create'));
	    }
	    
	}

	/**
	 * Updates a particular model.
	 * If update is successful, the browser will be redirected to the 'view' page.
	 * @param integer $id the ID of the model to be updated
	 */
	public function actionUpdate($id)
	{
		$model=$this->loadModel($id);

		// Uncomment the following line if AJAX validation is needed
		// $this->performAjaxValidation($model);

		if(isset($_POST['User']))
		{
		  $oldAvatarName = $model->avatar;
			$model->attributes=$_POST['User'];
			
        			
      if (@!empty($_FILES['User']['name']['avatar'])){
              
        $model->avatar = CUploadedFile::getInstance($model, 'avatar');
        
        //validate, oldname, newname, waiting to save and saveAs
        if ($model->validate(array('avatar'))){
      	        $tmpAvatarName = time().'_'.$model->randStr(3).'.jpg';
      	        $model->avatar->saveAs(Yii::app()->basePath.'/../images/avatar/'.$tmpAvatarName);
      	        $model->avatar = $tmpAvatarName; 
      	    }
      	}else {
      	    $model->avatar = $oldAvatarName;
      	}
			
			if($model->save())
				$this->redirect(array('view','id'=>$model->id));
		}

		$this->render('update',array(
			'model'=>$model,
		));
	}
	
	/**
	 * 
	 * change password here use a new view.
	 * @param int $id user id.
	 */
	public function actionUpdatePass($id)
	{
	    $user = $this->loadModel($id);
	    $user->setScenario('updatePass');
	    
	    $oldPassword = $user->password;
//	    echo $oldPassword;
	    $user->password = null;
	    
	    if (isset($_POST['User'])){
	        $user->attributes = $_POST['User'];
        
	        //check for self password update only
	        if ($user->id === Yii::app()->user->id){
	        //check input
    	        if ($user->validate()){
    	            
    	            //old password check
    	            if ($oldPassword === $user->encrypt($user->password_old)){
    	                //password repeat;
    	                $user->password = $user->encrypt($user->password);
    	                
    	                if($user->save(false))
    				                $this->redirect(array('view','id'=>$user->id));
    	            }else {
    	                $user->addError('password_old', 'Old Password not right!!');
    	            }
    	        }
	        }else {
	            $user->addError('password_old', 'You can only update user self password!!');
	        }
	    }
	    
	    $this->render('updatePass', array(
	        'model'=>$user,
	    ));
	    
	    
	}

	/**
	 * Deletes a particular model.
	 * If deletion is successful, the browser will be redirected to the 'admin' page.
	 * @param integer $id the ID of the model to be deleted
	 */
	public function actionDelete($id)
	{
		if(Yii::app()->request->isPostRequest)
		{
			// we only allow deletion via POST request
			$this->loadModel($id)->delete();

			// if AJAX request (triggered by deletion via admin grid view), we should not redirect the browser
			if(!isset($_GET['ajax']))
				$this->redirect(isset($_POST['returnUrl']) ? $_POST['returnUrl'] : array('admin'));
		}
		else
			throw new CHttpException(400,'Invalid request. Please do not repeat this request again.');
	}

	/**
	 * Lists all models.
	 */
	public function actionIndex()
	{
		$dataProvider=new CActiveDataProvider('User');
		$this->render('index',array(
			'dataProvider'=>$dataProvider,
		));
	}

	/**
	 * Manages all models.
	 */
	public function actionAdmin()
	{
		$model=new User('search');
		$model->unsetAttributes();  // clear any default values
		if(isset($_GET['User']))
			$model->attributes=$_GET['User'];

		$this->render('admin',array(
			'model'=>$model,
		));
	}
	
	

	/**
	 * Returns the data model based on the primary key given in the GET variable.
	 * If the data model is not found, an HTTP exception will be raised.
	 * @param integer the ID of the model to be loaded
	 */
	public function loadModel($id)
	{
		$model=User::model()->findByPk((int)$id);
		if($model===null)
			throw new CHttpException(404,'The requested page does not exist.');
		return $model;
	}

	/**
	 * Performs the AJAX validation.
	 * @param CModel the model to be validated
	 */
	protected function performAjaxValidation($model)
	{
		if(isset($_POST['ajax']) && $_POST['ajax']==='user-form')
		{
			echo CActiveForm::validate($model);
			Yii::app()->end();
		}
	}
}
